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CLAIMS : 

What is claimed is: 

1. A metihod, comprising: 

(a) maintaining a device identifier and a private key 
in a programmable logic device, the device identifier and 
the private key being non- volatile such that if power to 
the programmable logic device is lost the device 
identif ier\ and private key remain stored in the 
programmable logic device; 

(b) receiving a first encrypted key onto the 
programmable\ logic device, and using the device 
identifier and the private key to decrypt the first 
encrypted key\thereby generating a first key; 

(c) receiving onto the programmable logic device a 
bitstream comprising first encrypted configuration data 
encrypted with me first key; 

(d) using the tirst key to decrypt the first encrypted 
configuration data on the programmable logic device 
thereby generating^ first configuration data; and 

(e) configuring a first portion of the programmable 
logic device using fthe first configuration data. 

2. The method of Claim 1, wherein neither the device 
identifier nor the prAvate key are rewritable. 

3. The method of Claim A, wherein the bitstream further 
comprises a first key nujnber associated with the first 
encrypted configuration data, the first key being stored 
on the programmable logic Vievice in association with the 
first key number, the programmable logic device in step 
(d) using the first key numfter in the bitstream to 
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identify the first key as the key that will be used in 
step (d) to decrypt the first encrypted configuration 
data. 

The method of dlaim 1, wherein the device identifier 
and the private keW are stored on the programmable logic 
device in one of tme group consisting of: an anti fuse- 
based storage element, a fuse-based storage element, a 
laser-programmed stqrage element, an EPROM storage 
element, and a flashV-based storage element. 

5. The method of Claim 1, further comprising: 
after the first key iq generated in step (b) , storing 
the first key in non-vplatile memory on the programmable 
logic device. 

6. The method of Claim ]\, wherein the first encrypted 
configuration data is decrypted in step (d) on the 
programmable logic device by a hardware decryptor. 

7 . The method of Claim 1 wherein 

step (b) further comprises receiving a second encrypted 
key onto the programmable \ logic device and using the 
device identifier and the private key to decrypt the 
second encrypted key, thereby generating a second key; 

step (c) further comprises receiving onto the 
programmable logic device axbitstream comprising second 
encrypted configuration data\ encrypted with the second 
key; 

step (d) further comprises Nosing the second key to 
decrypt the second encrypted configuration data on the 
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programmable logic device, thereby generating second 
configuration data; and 

step (e) further comprises configuring a second 
portion of the programmable logic device using the second 
configuration data. 

The method of ilaim 7, wherein the bitstream further 
comprises a first! key number associated with the first 
encrypted configuration data, and wherein the bitstream 
further comprises la second key number associated with the 
second encrypted configuration data, the first key being 
stored on the programmable logic device in association 
with the first keylnumber, the second key being stored on 
the programmable loWic device in association with the 
second key number, the programmable logic device in (d) 
using the first key uiumber in the bitstream to identify 
the first key as the\ key that will be used in (d) to 
decrypt the first enqrypted configuration data, the 
programmable logic device in (d) using the second key 
number in the bitstream to identify the second key as the 
key that will be used \in (d) to decrypt the second 
configuration data. 

9. The method of Claim y further comprising: 
after the first key and\ the second key are generated in 
step (b) , storing the first key and the second key in 
non-volatile memory on tttie programmable logic device. 

10. The method of Claim 7, \ wherein the first portion of 
the programmable logic device is configured in (e) to 
realize a first IP module) and wherein the second portion 
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1 of the programmable logic device is configured in (e) to 

2 realize a seqond IP module. 
3 

4 11. The method lof Claim 1, wherein the programmable logic 

5 device is an SRAM-based PLD. 

6 \ 

7 12. The method df Claim 10, wherein the non-volatile 

8 memory in the programmable logic device is flash-based. 

9 \ 

10 13. The method of\ciaim 10, wherein the non-volatile 

11 memory in the programmable logic device is one-time 

12 programmable. \ 
O 13 \ 

^ 14 14. The method of Claim 10, wherein the non-volatile 

Mf 15 memory in the programmable logic device is antifuse- 

:ji 16 based. \ 

s 18 15. The method of ClalLm 10, wherein the non-volatile 

ijj 19 memory in the programmable logic device is fuse-based. 

H 20 \ 

□ 21 16. The method of Claim 1, wherein the device identifier 

22 and the private key are rewritable at one time, but as of 

23 the time step (a) occurs are no longer rewritable. 

24 \ 

25 17. The method of Claim \l, further comprising: 

26 receiving on a license manager the device identifier 

27 maintained on the programmable logic device; 

28 receiving on the licemse manager a first authorization 

29 code; and \ 

30 determining whether the first authorization code has a 

31 predetermined relationship with respect to the device 

32 identifier, wherein if the\first authorization code is 

31 
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determined to haVre the predetermined relationship then 
the license manager sends the first encrypted key to the 
programmable logic device such that it is received in 
step (b) , and wherein if the first authorization code is 
determined not to lhave the predetermined relationship 
then the license manager does not send the first 
encrypted key to tme programmable logic device in step 
(b) \ 

18. The method of ClatLm 17, wherein the first 
authorization code has the predetermined relationship 
with respect to the flevice identifier if the first 
authorization code contains the device identifier in an 
encrypted form. \ 

19. A method comprising A 

receiving onto a programmable logic device an 
encrypted first key; I 

on the programmable lpgic device decrypting the 
encrypted first key to generate a first key and storing 
the first key on the programmable logic device; 

receiving onto the programmable logic device a 
configuration bitstream ftaving a first portion and a 
second portion; \ 

on the programmable logic device decrypting the first 
portion of the conf iguratiion bitstream using the first 
key; \ 

configuring the programmable logic device with the 
decrypted first portion of the configuration bitstream 
thereby realizing a first IP\ module; . 
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1 20. A programmable logic device that receives an encrypted 

2 configuration b:.tstream, the programmable logic device 

3 comprising: 

4 non-volatilfe storage that stores a first key; 

5 a decryptor \that decrypts a first part of the 

6 encrypted configuration bitstream using the first key and 

7 thereby generates first configuration data; and 

8 first configurable logic elements being configured by 

9 the first configuration data. 
10 

11 21. The programmable logic device of Claim 20, wherein the 

12 first part of the encrypted configuration bitstream is 

13 identified by a first\key number in the bitstream, the 

14 first key number identifying the first key in the non- 
15 volatile storage, 
16 

17 22. A method, comprising: 

18 receiving on a development system a device identifier 

19 from a programmable ldgic device; 

20 receiving on the development system an authorization 

21 code; 

22 verifying on the development system that the 

23 authorization code and the device identifier have a 

24 predetermined relationship, wherein if the authorization 

25 code and the device identifier have the predetermined 

26 relationship then encrypting a key using the device 

27 identifier and sending tme encrypted key from the 

28 development system to ths programmable logic device, but 

29 wherein if the authorization code and the device 

30 identifier do not have the\ predetermined relationship 

31 then the encrypted key is r\ ot sent from the development 

32 system to the programmable \ogic device; and 
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the development system using the key to encrypt a 
portion of a configuration data bitstream, the 
development system outputting the configuration data 
bitstream including the encrypted portion. 

23. The method of ciaim 22, wherein the key has a key 
number, and whereim the development system adds the key 
number to the configuration data bitstream such that the 
key number is associated with the encrypted portion of 
the configuration data bitstream, the configuration data 
bitstream output from \the development system including 
the encrypted portion and the key number. 

24. The method of Claim 2E, wherein the development system 
comprises a capture/design tool and a license manager, 
the method further comprising: 

if the authorization coke and the device identifier 
are verified as having the predetermined relationship 
then the license manager allows use of IP module design 
information by the capture/design tool, whereas if the 
authorization code and the device identifier are not 
verified as having the predetermined relationship then 
the license manager does not allow use of the IP module 
design information by the capture/design tool. 

25. The method of Claim 22, whereun the portion of the 
configuration data bitstream is \conf iguration data for an 
IP module, the development system comprising a 
capture/design tool, the capturemesign tool being usable 
to view a net external to the IP module, the 
capture/design tool not being usab\e to view a net 
internal to the IP module. 
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2 26. A development system, comprising: 

3 a capture/design tool; and 

4 means for verifying that an authorization code has a 

5 predetermined relationship with respect to a device 



6 identifier read froiri a programmable logic device, and if 

7 the authorization coke is verified then the means also 

8 encrypting a key and I sending the encrypted key to the 

9 programmable logic device, if the authorization code is 

10 verified then the means also uses the key to encrypt a 

11 portion of a configuration data bitstream output by the 

12 capture/design tool, tthe configuration data bitstream 
D 13 including the encrypted portion being sent to the 

yi 14 programmable logic devkce. 

| 15 I 

yb 16 27. The development system of Claim 26, wherein the 

j7 17 encrypted portion of thk bitstream contains configuration 

* 18 data for an IP module, the capture/design tool being 

O \ 

jji 19 usable to view a net external to the IP module, the 

j \I 20 capture/design tool beiraj unusable to view a net internal 

p 21 to the IP module. I 

O 22 I 

23 28. The development system! of Claim 26, wherein the key 

24 has a key number, the means inserting the key number into 

25 the configuration data bitstream sent to the programmable 

26 logic device, the key numJper in the configuration data 

27 bitstream being associated with the encrypted portion of 

28 the configuration data bitjstream. 

29 \ 
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